Legal claims defining the scope of protection, as filed with the USPTO.
1. A method, comprising: receiving, by a first network device in a first regional service cloud, initial configuration data, the initial configuration data identifying the first regional service cloud as a primary cloud to provision a first set of enforcement server devices of multiple regional enforcement server devices and a secondary cloud to provision a second set of enforcement server devices of the multiple regional enforcement server devices; receiving, by a second network device in a second regional service cloud, the initial configuration data, the initial configuration data identifying the second regional service cloud as a secondary cloud to provision the first set of the enforcement server devices and a primary cloud to provision the second set of the enforcement server devices; receiving, by the second network device in the second regional service cloud, a registration request from an enforcement server device in the first set of the multiple regional enforcement server devices; detecting, by the second network device in the second regional service cloud, if a registration record exists for the enforcement server device; when it is detected that the registration record does not exist for the enforcement server device: creating, by the second network device in the second regional service cloud, a new registration record associating the enforcement server device with the first regional service cloud as the primary cloud, providing, by the second network device in the second regional service cloud and to the enforcement server device, the new registration record, and sending, by the first network device in the first regional service cloud and to the enforcement server device, a service configuration record; and when it is detected that the registration record exists for the enforcement server device: updating, by the second network device in the second regional service cloud, the registration record to assign the second regional service cloud as the primary cloud and the first regional service cloud as the secondary cloud, providing, by the second network device in the second regional service cloud and to the enforcement server device, registration data, corresponding to the updated record, and sending, by the second network device in the second regional service cloud and to the enforcement server device, a new service configuration record.
2. The method of claim 1 , further comprising: receiving, by the enforcement server device, initial configuration settings to identify the first regional service cloud as the primary cloud and the second regional service cloud as the secondary cloud for the enforcement server device; sending, by the enforcement server device and using the initial configuration settings, a registration request to the first regional service cloud; identifying a network error for the first registration request; and sending, by the enforcement server device and using the initial configuration settings, the registration request to the second regional service cloud.
3. The method of claim 2 , wherein sending the new service configuration record includes providing a sequence number for the new service configuration record.
4. The method of claim 3 , further comprising: receiving, by the enforcement server device, the new service configuration record; comparing, by the enforcement server device, the sequence number of the new service configuration record with another sequence number of a previously stored service configuration record; and rejecting, by the enforcement server device, the new service configuration record when the sequence number of the new service configuration record does not exceed the other sequence number of the previously stored service configuration record.
5. The method of claim 4 , further comprising: applying, by the enforcement server device, the new service configuration record when the sequence number of the new service configuration record exceeds the other sequence number of the previously stored service configuration record.
6. The method of claim 2 , wherein the initial configuration settings further include a registration interval indicating a time period of how frequently the enforcement server device will perform a registration process with a primary cloud server.
7. The method of claim 1 , wherein updating the registration record includes providing a sequence number for the registration record.
8. The method of claim 7 , further comprising: receiving, by the enforcement server device, the updated registration record; comparing, by the enforcement server device, the sequence number of the updated registration record with another sequence number of a previously stored registration record; and rejecting, by the enforcement server device, the updated registration record when the sequence number of the updated registration record does not exceed the other sequence number of the previously stored registration record.
9. The method of claim 8 , further comprising: applying, by the enforcement server device, the updated registration record when the sequence number of the updated registration record exceeds the other sequence number of the previously stored registration record.
10. The method of claim 1 , wherein the initial configuration data further includes a provisioning interval for pushing new service configuration records to first set of the enforcement server devices and the second set of the enforcement server devices.
11. A system comprising, comprising: a first regional service cloud including one or more network devices, the network devices including a memory and a processor to execute instructions in the memory to: receive initial configuration data, the initial configuration data identifying the first regional service cloud as a primary cloud to provision a first set of enforcement server devices of multiple regional enforcement server devices and a secondary cloud to provision a second set of enforcement server devices of the multiple regional enforcement server devices, receive a registration request from an enforcement server device in the first set of the multiple regional enforcement server devices, and send, to the enforcement server device, a service configuration record; and a second regional service cloud including one or more other network devices, the other network devices including a memory and a processor to execute instructions in the memory to: receive the initial configuration data, the initial configuration data identifying the second regional service cloud as a secondary cloud to provision the first set of the enforcement server devices and a primary cloud to provision the second set of the enforcement server devices, receive another registration request from the enforcement server device, detect if a registration record exists for the enforcement server device, when it is detected that the registration record does not exist for the enforcement server device: create a new registration record associating the enforcement server device with the first regional service cloud as the primary cloud, and provide, to the enforcement server device, the new registration record, and when it is detected that the registration record exists for the enforcement server device: update, by the second regional service cloud, the registration record to assign the second regional service cloud as the primary cloud and the first regional service cloud as the secondary cloud, provide, by the second regional service cloud and to the enforcement server device, registration data, corresponding to the updated registration record, and send, by the second regional service cloud and to the enforcement server device, a new service configuration record.
12. The system of claim 11 , the enforcement server device being configured to: receive initial configuration settings to identify the first regional service cloud as the primary cloud and the second regional service cloud as the secondary cloud for the enforcement server device; send, using the initial configuration settings, a registration request to the first regional service cloud; identify a network error for the first registration request; and send, using the initial configuration settings, the registration request to the second regional service cloud.
13. The system of claim 12 , wherein the new service configuration record includes a sequence number for the new service configuration record.
14. The system of claim 13 , the enforcement server device being further configured to: receive the new service configuration record; compare the sequence number of the new service configuration record with another sequence number of a previously stored service configuration record; and reject the new service configuration record when the sequence number of the new service configuration record does not exceed the other sequence number of the previously stored service configuration record.
15. The system of claim 14 , the enforcement server device being further configured to: apply the new service configuration record when the sequence number of the new service configuration record exceeds the other sequence number of the previously stored service configuration record.
16. The system of claim 12 , wherein the initial configuration settings further include a registration interval indicating a time period of how frequently the enforcement server device will perform a registration process with a primary cloud server.
17. The system of claim 11 , wherein the updated registration record includes a sequence number for the updated registration record.
18. The system of claim 17 , the enforcement server device being further configured to: receive the updated registration record; compare the sequence number of the updated registration record with another sequence number of a previously stored registration record; and apply the updated registration record when the sequence number of the updated registration record exceeds the other sequence number of the previously stored registration record.
19. A non-transitory computer-readable medium containing instructions executable by at least one processing unit, the computer-readable medium comprising one or more instructions for: receiving initial configuration data, the initial configuration data: identifying a first regional service cloud as a primary cloud to provision a first set of enforcement server devices of multiple regional enforcement server devices and a secondary cloud to provision a second set of enforcement server devices of the multiple regional enforcement server devices, and identifying a second regional service cloud as a secondary cloud to provision the first set of the enforcement server devices and a primary cloud to provision the second set of the enforcement server devices; receiving a registration request from an enforcement server device in the first set of the multiple regional enforcement server devices; detecting if a registration record exists for the enforcement server device; when it is detected that the registration record does not exist for the enforcement server device: creating a new registration record associating the enforcement server device with the first regional service cloud as the primary cloud, providing, to the enforcement server device, the new registration record, and sending, to the enforcement server device, a service configuration record; and when it is detected that the registration record exists for the enforcement server device: updating the registration record to assign the second regional service cloud as the primary cloud and the first regional service cloud as the secondary cloud, providing, to the enforcement server device, registration data, corresponding to the updated record, and sending, to the enforcement server device, a new service configuration record.
20. The non-transitory computer-readable medium claim 19 , further comprising one or more instructions for: storing, in a database for the second regional service cloud, the service configuration record; and replicating, to another database for the first regional service cloud, the service configuration record.
Unknown
April 17, 2018
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.